[Forgot Password]
Login  Register Subscribe

25354

 
 

132811

 
 

147793

 
 

909

 
 

118063

 
 

156

Paid content will be excluded from the download.


Download | Alert*
OVAL

Cross site request forgery vulnerability in Couchbase Server

ID: oval:org.secpod.oval:def:64158Date: (C)2020-07-10   (M)2020-07-10
Class: VULNERABILITYFamily: windows




The host is installed with Couchbase Server 6.0.0 and is prone to a cross site request forgery vulnerability. A flaw is present in the application, which fails to properly handle the credentials cached by a browser. Successful exploitation could allow attackers to perform a CSRF attack if an administrator has used their browser to check the results of a REST API request.

Platform:
Microsoft Windows 10
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016
Microsoft Windows Server 2019
Product:
Couchbase Server
Reference:
CVE-2020-9042
CVE    1
CVE-2020-9042

© SecPod Technologies